We often receive emails which states that you have won 1000$ or else you may receive messages to your mobiles which tells your number has been selected in a lucky draw contest. Somebody believe those things and doing what those mail senders asking us to do like providing the bank account details, passwords, etc. But later we come to know that our passwords have been hacked. This problem is known as phishing” which are used by the cyber criminals to attack the common people.
Some simple things which can avoid phishing attacks are :
> In any circumstances your Credit Card Company or bank will ask for your password.
> If you receive any email with a link don’t click it blindly. It may be a fake link that can take you to a fake signin screen or to the other phishing techniques. Before clicking the link you can see where the link drives you by holding the mouse over it for some time and you can see its status bar of your web browser.
> Sometimes you will receive an email along with a link which looks real. Though you are placing the cursor over it it shows a trusted website. Consider the following for an example > https://firstname.lastname@example.org initially it will be look like Facebook but completely it takes you to the other website which you can see only after signing up.
> Do check always for “https” in address bar URL of your web browser. Always trust the websites which are having “https” and the phishing websites will have “http”.
> Once you make sure that the URL address in safe. Then notice the spelling of the website which may slightly differ from the actual website. For an example www.citibank.com instead of www.citybank.com
> Another way to find the phishing email is, you can notice your full name in the email carefully. Normally the cyber criminal don’t know your exact name and they may address you as sir or just with your email address.
> The popular browsers like chrome, Firefox are maintaining a list for known phishing sites and will give you a warning in case you are visiting the phishing website which present in their database.
> In case you are receiving a link and you are not feeling safe to hit on it, you can check that link by submitting it to the website known as PhishTank. This PhishTank website maintaining a list of phishing websites and provides the identification of phishing website service to its users.
> The PhishTank provides you a bar to specify your suspected link in it and checks about it. If you are registered with that website you can submit the phishing links to the website.
> I have a specified a suspected link in that bar, in order to check if it is phishing website. Then click on the “is it phish” button.
> Phishtank will detected that link is a phish.
Some commercial anti-phishing tools are also available for providing complete protection against phishing attacks. The best example is McAfee’s SiteAdvisor Live which allows you to detect and protect you from the phishing sites. You can get it from the online.
If you don’t ever have an account in a particular bank and sometimes will receive a mail from that bank mostly that will be a phishing attack. By keeping mind on the above steps you can easily avoid the phishing attacks.